With the increasing openness of smart grids, a large quantity of power terminals will be widely applied in systems of smart grids by various access modes (wired, wireless, satellite). In order to ensure the integrity and confidentiality of the data and the security of the communications between power terminals and the smart grid intranet, a lightweight security authentication and key agreement scheme is proposed in this article. The scheme provides mutual authentication based on the SM2 algorithm and key agreement which can prevent various attacks. Furthermore experimental evaluation and comparative analysis is conducted to indicate that the proposed scheme can resist many types of attacks with lower amounts of total computational resources and lower communications bandwidth. The analysis shows that the proposed scheme is suitable for smart grid.

随着智能电网开放性的提高，大量的电力终端将通过各种接入方式（有线，无线，卫星）广泛应用于智能电网系统。为了保证数据的完整性和机密性以及电力终端与智能电网企业内部网之间通信的安全性，本文提出了一种轻量级的安全认证和密钥协商方案。该方案基于SM2算法和密钥协议提供了相互身份验证，可以防止各种攻击。此外，进行了实验评估和比较分析，结果表明，该方案能够以较低的总计算资源和较低的通信带宽抵抗多种类型的攻击。分析表明，该方案适用于智能电网。